joomscan

OWASP Joomla! Vulnerability Scanner (JoomScan) is an open source project, developed with the aim of automating the task of vulnerability detection and reliability assurance in Joomla CMS deployments. Implemented in Perl, this tool enables seamless and effortless scanning of Joomla installations, while leaving a minimal footprint with its lightweight and modular architecture. It not only detects known offensive vulnerabilities, but also is able to detect many misconfigurations and admin-level shortcomings that can be exploited by adversaries to compromise the system. Furthermore, OWASP JoomScan provides a user-friendly interface and compiles the final reports in both text and HTML formats for ease of use and minimization of reporting overheads.

Details

Category: Scanners

Publisher: trickest

Created Date: 6/23/2021

Container: quay.io/trickest/joomscan:7931539

Source URL: https://github.com/OWASP/joomscan

Parameters

url

string

required

Command: --url - The Joomla URL/domain to scan.

proxy

string

Command: --proxy - Use a proxy to connect to the target URL.

string

Command: --cookie - Set cookie.

timeout

string

Command: --timeout - Set timeout.

urls-file

file

Command: --mass - Cycle through URLs provided in txt file.

user-agent

string

Command: --user-agent - Use the specified User-Agent.

random-agent

boolean

Command: --random-agent - Use a random User-Agent.

enumerate-components

boolean

Command: --enumerate-components - Try to enumerate components.

Library

Details

Parameters